Categoria: Malware & Threats

New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention

new-wiper-malware-targeted-venezuelan-energy-sector-prior-to-us-intervention

Dubbed Lotus Wiper, the malware targets recovery mechanisms, overwrites drives, and systematically deletes files.

The post New Wiper Malware Targeted Venezuelan Energy Sector Prior to US Intervention appeared first on SecurityWeek.

Mirai Botnet Targets Flaw in Discontinued D-Link Routers

mirai-botnet-targets-flaw-in-discontinued-d-link-routers

The exploitation of the command injection vulnerability started one year after public disclosure and PoC exploit code publication.

The post Mirai Botnet Targets Flaw in Discontinued D-Link Routers appeared first on SecurityWeek.

Google Antigravity in Crosshairs of Security Researchers, Cybercriminals

google-antigravity-in-crosshairs-of-security-researchers,-cybercriminals

Researchers discovered a remote code execution vulnerability and cybercriminals are using its reputation to deliver malware.

The post Google Antigravity in Crosshairs of Security Researchers, Cybercriminals appeared first on SecurityWeek.

Dozens of Malicious Crypto Apps Land in Apple App Store

dozens-of-malicious-crypto-apps-land-in-apple-app-store

Masquerading as popular cryptocurrency wallets, the apps can hijack recovery phrases and private keys.

The post Dozens of Malicious Crypto Apps Land in Apple App Store appeared first on SecurityWeek.

Hackers Abuse QEMU for Defense Evasion

The machine emulator has been abused in at least two different campaigns distributing ransomware and remote access tools.

The post Hackers Abuse QEMU for Defense Evasion appeared first on SecurityWeek.

ZionSiphon Malware Targets ICS in Water Facilities

The malware is configured to operate on systems associated with Israeli water treatment and desalination plants.

The post ZionSiphon Malware Targets ICS in Water Facilities appeared first on SecurityWeek.

100 Chrome Extensions Steal User Data, Create Backdoor

Published through five accounts, the extensions appear part of a coordinated campaign based on shared C&C infrastructure.

The post 100 Chrome Extensions Steal User Data, Create Backdoor appeared first on SecurityWeek.

$10 Domain Could Have Handed Hackers 25k Endpoints, Including in OT and Gov Networks

Researchers found adware capable of killing cybersecurity products and pushing more dangerous payloads to infected systems.

The post $10 Domain Could Have Handed Hackers 25k Endpoints, Including in OT and Gov Networks appeared first on SecurityWeek.

CPUID Hacked to Serve Trojanized CPU-Z and HWMonitor Downloads

Download links were replaced by a Russian-speaking threat actor to distribute a recently emerged malware named STX RAT.

The post CPUID Hacked to Serve Trojanized CPU-Z and HWMonitor Downloads appeared first on SecurityWeek.

Fake Claude Website Distributes PlugX RAT

The malware mimics the legitimate Anthropic installation, relies on DLL sideloading, and cleans up after itself.

The post Fake Claude Website Distributes PlugX RAT appeared first on SecurityWeek.